355 matches found
CVE-2017-1659
"HCL iNotes is susceptible to a Cross-Site Scripting XSS Vulnerability. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials."...
CVE-2017-1659
CVE-2017-1659 concerns HCL iNotes (HCL Notes) with a Cross-Site Scripting (XSS) vulnerability. The available documents describe that an attacker could exploit this to steal a user’s cookie-based authentication credentials. No explicit remediation, affected versions, or specific exploit details ar...
IBM iNotes Open Redirect Vulnerability
IBM iNotes also known as IBM Lotus iNotes is a set of Web-based e-mail software from IBM in the United States. The software helps different types of users online and offline users to effectively manage business-critical information and collaboration. An open redirection vulnerability exists in IB...
IBM iNotes Information Disclosure Vulnerability (CNVD-2018-19429)
IBM iNotes also known as IBM Lotus iNotes is a set of Web-based e-mail software from IBM in the United States. The software helps different types of users online and offline users to effectively manage business-critical information and collaboration. An information disclosure vulnerability exists...
IBM iNotes Cross-Site Scripting Vulnerability (CNVD-2018-13098)
IBM iNotes also known as IBM Lotus iNotes is a set of Web-based e-mail software from IBM in the United States. The software helps different types of users online and offline users to effectively manage business-critical information and collaboration. A cross-site scripting vulnerability exists in...
Authentication flaw
IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the remote image filtering mechanism and obtain sensitive information via a crafted e-mail message. IBM X-Force ID: 83371...
CVE-2013-0592
Cross-site scripting XSS vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 83815...
Open redirect
Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. IBM X-Force ID: 83383...
Cross site scripting
Cross-site scripting XSS vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 83815...
CVE-2013-0594
Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. IBM X-Force ID: 83383...
CVE-2013-0589
IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the remote image filtering mechanism and obtain sensitive information via a crafted e-mail message. IBM X-Force ID: 83371...
CVE-2013-0594
The affected software is IBM iNotes (formerly IBM Lotus iNotes). Affected versions are IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1. The vulnerability is an open redirect that allows remote attackers to redirect users to arbitrary websites and potentially conduct phishing. The exact ro...
CVE-2013-0589
IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the remote image filtering mechanism and obtain sensitive information via a crafted e-mail message. IBM X-Force ID: 83371...
CVE-2013-0592
Cross-site scripting XSS vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 83815...
CVE-2013-0592
IBM iNotes contains a Cross-Site Scripting (XSS) vulnerability in versions before 8.5.3 Fix Pack 6 and 9.x before 9.0.1. The flaw allows remote attackers to inject arbitrary script or HTML via unspecified vectors. Affected component is the iNotes web interface; root cause details are not provided...
CVE-2013-0594
Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. IBM X-Force ID: 83383...
CVE-2013-0589
IBM iNotes (also IBM Lotus iNotes) before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 is vulnerable to a remote information-disclosure via a crafted e-mail message that can bypass the remote image filtering mechanism. Exploitation would allow an attacker to obtain sensitive information from affected us...
Code injection
IBM iNotes 8.5 and 9.0 SUService can be misguided into running malicious code from a DLL masquerading as a windows DLL in the temp directory. IBM X-Force ID: 134532...
CVE-2017-1711
IBM iNotes 8.5 and 9.0 SUService can be misguided into running malicious code from a DLL masquerading as a windows DLL in the temp directory. IBM X-Force ID: 134532...
CVE-2017-1711
IBM iNotes 8.5 and 9.0 SUService can be misguided into running malicious code from a DLL masquerading as a windows DLL in the temp directory. IBM X-Force ID: 134532...